CVE-2020-2107
CVE-2020-2107 affects Jenkins Fortify Plugin versions 19.1.29 and earlier. The issue is that proxy server passwords are stored unencrypted in job config.xml on the Jenkins master and can be read by users with Extended Read permission or access to the master filesystem. Impact is exposure of crede...